Contact Us Login Home

Founded by Veterans in Hampton Roads

Company Name:
C2 Essentials Inc
Approximate Salary:
Not Specified
Merrifield, Virginia
United States
Information Technology
Position type:
Full Time
Experience level:
2 - 5 years
Education level:
Bachelor's Degree
Renuka Nair

Security Assessment Specialist

Our client is a recognized Information Technology solutions provider. Founded in 1998 and based in Reston, Virginia, it is a CMMI Level 3 Certified company with an established reputation for excellence and on-time delivery with a consistently high customer satisfaction rating from its Federal Government and private consulting contracts.

They are currently seeking a professional and experienced full-time Security Assessment Specialist in Merrifield, VA.


• Leverage working knowledge of the CIS Critical Security Controls including all associated sub-controls to facilitate ongoing security maturity assessments across the enterprise. • Research, develop, and document CSC maturity metrics, artifacts, and workflows relevant to the CIS Top 20 Controls identifying status of tool procurements, implementations, SIEM integrations, and/or decommissioning across multiple enterprise networks. • Conduct analysis and technical security mapping to identify gaps and provide executive-level understanding of current and future states of CIS maturity. • Coordinate with key stakeholders across the organization to identify technology and policy mapping to each CSC sub-controls, gaps, and current/future status. • Develop in-depth executive level briefings for Executive Leadership Team (ELT) on CIS CSC maturity, tools, implementation status, etc. • Analyze organizational policies with CIS best practices and provide recommendations on areas for improvement to increase maturity based on the CIS CSCs. • Consolidate and integrate feedback from deep dive reviews with key stakeholders and manage team documents to central SharePoint site. • Update maturity status on a quarterly basis and report changes to ELT. • Provide recommendations for improvement based on assessment results to include changes to Standard Operating Procedures and other policies.


• 3-5 years of related experience in information technology and/or information security conducting risk assessments to identify security gaps, assessing controls, and providing recommendations and reporting to executive leadership. • Fundamental understanding of computer networking (TCP/IP, DNS, Firewalls, Proxies, Routers, Switches, etc.). • Knowledge of Windows and Linux operating systems and information security components. • Knowledge of Cybersecurity technologies to include:          -Asset Configuration Management          -Intrusion Detection/Prevention Systems (IDS/IPS)          -Security Incident and Event Management (SIEM)          -Antivirus          -Networking          -Security Vulnerability Scanning          -Incident Response • Certifications: CompTIA Security+, Network+, A+, CISSP, CEH (Preferred). • Active DOD Secret Clearance (Preferred).


• Bachelor’s Degree – IT, Cybersecurity, or Management Information Systems (Preferred).

Please Apply Online –

EOE M/F/Disability/Vet

Our Client will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information.